[v2] gcc: Upgidate status of CVE-2023-4039

Message ID	20240122161842.8557-1-simone.p.weiss@posteo.com
State	Accepted
Headers	show Return-Path: <simone.p.weiss@posteo.com> ip: 185.67.36.66, mailfrom: simone.p.weiss@posteo.com) From: simone.p.weiss@posteo.com To: openembedded-core@lists.openembedded.org Cc: =?utf-8?q?Simone_Wei=C3=9F?= <simone.p.weiss@posteo.com> Subject: [PATCH v2] gcc: Upgidate status of CVE-2023-4039 Date: Mon, 22 Jan 2024 16:18:42 +0000 Message-Id: <20240122161842.8557-1-simone.p.weiss@posteo.com> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
Series	[v2] gcc: Upgidate status of CVE-2023-4039 \| expand [v2] gcc: Upgidate status of CVE-2023-4039

Message ID

20240122161842.8557-1-simone.p.weiss@posteo.com

State

Accepted

Headers

From: simone.p.weiss@posteo.com
To: openembedded-core@lists.openembedded.org
Cc: =?utf-8?q?Simone_Wei=C3=9F?= <simone.p.weiss@posteo.com>
Subject: [PATCH v2] gcc: Upgidate status of CVE-2023-4039
Date: Mon, 22 Jan 2024 16:18:42 +0000
Message-Id: <20240122161842.8557-1-simone.p.weiss@posteo.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

Series

[v2] gcc: Upgidate status of CVE-2023-4039 | expand

Commit Message

Simone Weiß Jan. 22, 2024, 4:18 p.m. UTC

From: Simone Weiß <simone.p.weiss@posteo.com>

This is fixed via a patch added in gcc-13.2.inc already, but still
reported e.g. for libgcc as it is not defining an own source but use the
shared gcc-source.

Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com>
---
 meta/recipes-devtools/gcc/libgcc-initial_13.2.bb | 2 ++
 1 file changed, 2 insertions(+)

Comments

Simone Weiß Jan. 22, 2024, 4:40 p.m. UTC | #1

On Mon, 2024-01-22 at 16:18 +0000, Simone Weiß wrote:
> From: Simone Weiß <simone.p.weiss@posteo.com>
> 
> This is fixed via a patch added in gcc-13.2.inc already, but still
> reported e.g. for libgcc as it is not defining an own source but use
> the
> shared gcc-source.
> 
> Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com>
> ---
>  meta/recipes-devtools/gcc/libgcc-initial_13.2.bb | 2 ++
>  1 file changed, 2 insertions(+)
> 
> diff --git a/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb
> b/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb
> index a259082b47..fd66692185 100644
> --- a/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb
> +++ b/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb
> @@ -3,3 +3,5 @@ require libgcc-initial.inc
>  
>  # Building with thumb enabled on armv6t fails
>  ARM_INSTRUCTION_SET:armv6 = "arm"
> +
> +CVE_STATUS[CVE-2023-4039] = "fixed-version: Fixed via CVE-2023-
> 4039.patch in gcc-13-2.inc which is added via require here"
> 
> -=-=-=-=-=-=-=-=-=-=-=-
> Links: You receive all messages sent to this group.
> View/Reply Online (#194182):
> https://lists.openembedded.org/g/openembedded-core/message/194182
> Mute This Topic: https://lists.openembedded.org/mt/103889417/8071792
> Group Owner: openembedded-core+owner@lists.openembedded.org
> Unsubscribe:
> https://lists.openembedded.org/g/openembedded-core/unsub [
> simone.weiss@posteo.net]
> -=-=-=-=-=-=-=-=-=-=-=-
> 


Please ignore this. I made a rebase error. I will send a corrected
version.

Sorry
Simone

diff --git a/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb b/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb
index a259082b47..fd66692185 100644
--- a/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb
+++ b/meta/recipes-devtools/gcc/libgcc-initial_13.2.bb
@@ -3,3 +3,5 @@  require libgcc-initial.inc
 
 # Building with thumb enabled on armv6t fails
 ARM_INSTRUCTION_SET:armv6 = "arm"
+
+CVE_STATUS[CVE-2023-4039] = "fixed-version: Fixed via CVE-2023-4039.patch in gcc-13-2.inc which is added via require here"

[v2] gcc: Upgidate status of CVE-2023-4039

Commit Message

Comments

Patch